Lucene search
K

21 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2006-6431

Malware in sbrugna...

7.5CVSS6.4AI score0.01052EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2006-6432

Malware in sbrugna...

6.4CVSS6.4AI score0.01088EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2006-6430

Malware in sbrugna...

6.8CVSS6.4AI score0.02006EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2006-6515

Malware in sbrugna...

6.8CVSS6.4AI score0.01088EPSS
Exploits0References3
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.16 views

Vt-Forum Lite 1.3 vf_newtopic.asp IFRAME Element XSS

No description provided by source. source: http://www.securityfocus.com/bid/21428/info Vt-Forum Lite is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code execute in...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.11 views

Vt-Forum Lite 1.3 vf_info.asp StrMes Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/21428/info Vt-Forum Lite is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code execute in...

7.1AI score
Exploits0
NVD
NVD
added 2006/12/14 1:28 a.m.18 views

CVE-2006-6532

Multiple cross-site scripting XSS vulnerabilities in Vt-Forum Lite 1.3 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 StrMsg or 2 TopicID parameter to a vfinfo.asp, b vfnewtopic.asp, c vfsettings.asp, and d vfreplytopic.asp, different vectors than CVE-2006-644...

6.8CVSS5.6AI score0.01088EPSS
Exploits0References2
CVE
CVE
added 2006/12/14 1:0 a.m.41 views

CVE-2006-6532

CVE-2006-6532 is an XSS issue affecting Vt-Forum Lite 1.3 and earlier. Connected docs confirm exploitable via (1) StrMsg/Topic_ID parameters to vf_info.asp, vf_newtopic.asp, vf_settings.asp, and vf_replytopic.asp (and references to CVE-2006-6447). Root cause is insufficient input sanitization lea...

6.8CVSS5.6AI score0.01088EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2006/12/14 1:0 a.m.19 views

CVE-2006-6532

Multiple cross-site scripting XSS vulnerabilities in Vt-Forum Lite 1.3 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 StrMsg or 2 TopicID parameter to a vfinfo.asp, b vfnewtopic.asp, c vfsettings.asp, and d vfreplytopic.asp, different vectors than CVE-2006-644...

5.6AI score0.01088EPSS
Exploits0References2
NVD
NVD
added 2006/12/10 9:28 p.m.14 views

CVE-2006-6447

Multiple cross-site scripting XSS vulnerabilities in Vt-Forum Lite 1.3 and 1.5 allow remote attackers to inject arbitrary web script or HTML via 1 the StrMes parameter in vfinfo.asp and possibly 2 a URL in the SRC attribute of an IFRAME element that is submitted to vfnewtopic.asp...

6.8CVSS5.8AI score0.02006EPSS
Exploits0References6
NVD
NVD
added 2006/12/10 9:28 p.m.15 views

CVE-2006-6449

Vt-Forum Lite 1.3 and earlier store sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for db/forum.mdb. NOTE: The provenance of this information is unknown; the details are obtained solely from thir...

6.4CVSS6.4AI score0.01088EPSS
Exploits0References2
NVD
NVD
added 2006/12/10 9:28 p.m.14 views

CVE-2006-6448

Multiple SQL injection vulnerabilities in Vt-Forum Lite 1.3 and earlier allow remote attackers to execute arbitrary SQL commands via the user parameter to vfmemberdetail.asp, and other unspecified vectors. NOTE: The provenance of this information is unknown; the details are obtained solely from...

7.5CVSS8.2AI score0.01052EPSS
Exploits0References2
CVE
CVE
added 2006/12/10 9:0 p.m.47 views

CVE-2006-6447

Vuln: CVE-2006-6447 affects Vt-Forum Lite 1.3 and 1.5. Affected component: vf_info.asp (StrMes parameter) and possibly a URL in the SRC attribute of an IFRAME submitted to vf_newtopic.asp, enabling remote XSS through input vectors described in the description. Impact and specifics are limited to ...

6.8CVSS5.8AI score0.02006EPSS
Exploits0References6Affected Software1
Cvelist
Cvelist
added 2006/12/10 9:0 p.m.18 views

CVE-2006-6448

Multiple SQL injection vulnerabilities in Vt-Forum Lite 1.3 and earlier allow remote attackers to execute arbitrary SQL commands via the user parameter to vfmemberdetail.asp, and other unspecified vectors. NOTE: The provenance of this information is unknown; the details are obtained solely from...

8.2AI score0.01052EPSS
Exploits0References2
Cvelist
Cvelist
added 2006/12/10 9:0 p.m.16 views

CVE-2006-6447

Multiple cross-site scripting XSS vulnerabilities in Vt-Forum Lite 1.3 and 1.5 allow remote attackers to inject arbitrary web script or HTML via 1 the StrMes parameter in vfinfo.asp and possibly 2 a URL in the SRC attribute of an IFRAME element that is submitted to vfnewtopic.asp...

5.8AI score0.02006EPSS
Exploits0References6
Cvelist
Cvelist
added 2006/12/10 9:0 p.m.18 views

CVE-2006-6449

Vt-Forum Lite 1.3 and earlier store sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for db/forum.mdb. NOTE: The provenance of this information is unknown; the details are obtained solely from thir...

6.4AI score0.01088EPSS
Exploits0References2
CVE
CVE
added 2006/12/10 9:0 p.m.39 views

CVE-2006-6448

Vulnerability: CVE-2006-6448 affects Vt-Forum Lite 1.3 and earlier. Description: Multiple SQL injection vulnerabilities allow remote attackers to execute arbitrary SQL commands via the user parameter to vf_memberdetail.asp and other vectors. Root cause: unsafely constructed SQL queries in the aff...

7.5CVSS8.6AI score0.01052EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2006/12/10 9:0 p.m.41 views

CVE-2006-6449

Vulnerability CVE-2006-6449 affects Vt-Forum Lite 1.3 and earlier. The issue is that sensitive information (a database) is stored under the web root with insufficient access control, enabling remote attackers to download db/forum.mdb via a direct request. This describes a partial confidentiality ...

6.4CVSS6.7AI score0.01088EPSS
Exploits0References2Affected Software1
exploitpack
exploitpack
added 2006/12/04 12:0 a.m.8 views

Vt-Forum Lite 1.3 - vf_newtopic.asp IFRAME Element Cross-Site Scripting

Vt-Forum Lite 1.3 - vfnewtopic.asp IFRAME Element Cross-Site Scripting source: https://www.securityfocus.com/bid/21428/info Vt-Forum Lite is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to...

6.8AI score
Exploits0
exploitpack
exploitpack
added 2006/12/04 12:0 a.m.12 views

Vt-Forum Lite 1.3 - vf_info.asp?StrMes Cross-Site Scripting

Vt-Forum Lite 1.3 - vfinfo.asp?StrMes Cross-Site Scripting source: https://www.securityfocus.com/bid/21428/info Vt-Forum Lite is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrar...

6.8AI score
Exploits0
Rows per page
Query Builder